FIPS 140-2 Validated Cryptography: Federal Information Processing Standards (FIPS) approved and validated cryptography up to (and including) 256-bit AES encryption over SSL, SSH, and SCP2 protocols.
256-bit AES encryption: With leading 256-bit encryption over SSL and SSH (SFTP and SCP2) connection, WS FTP Server delivers unrivaled encryption strength.
SSH Transfers: WS FTP Server transfers files over SSH protocol (firewall-friendly, uses a single port), supports inline compression for optimised file transfers, and maintains data encryption on all connections.
Secure Copy (SCP2): Enables secure file transfers using the Secure Shell (SSH2) protocol (e.g., PuTTY and OpenSSH) and provides easy interoperability with Linux and Unix systems. Available in WS_FTP Corporate only
File Integrity: Guarantees uncompromised delivery with file integrity checking up to SHA-512; works optimally with WS_FTP Professional client software.
Anti-Hammering: Identify, log and automatically block IP addresses and subnets that attempt consecutive failed logon attempts.
SSH Key Management: SSH user keys can be imported and exported to and from Windows, Unix, and Linux systems.
Configure Email Notifications for SMTP Server Authentication: Easily configure business rules to automatically authenticate and send email notifications when specified file transfer or server events occur. Email notifications can be configured to enable SMTP server authentication if required by the mail server.
Force Secure Client-Server Connections: Administrators can require encrypted SSH or SSL client-server connections; ability to force all clients to connect at SSH, SSL v3 or TLS 1.0 or higher.
SSL Certificate Support: The WS_FTP Server Trusted Authorities database supports SSL certificate chains containing either the full chain or just the peer level certificate.
SSH Listener Option: Support for suppressing the SSH protocol name and version from being displayed on the login banner, preventing users from attempting malicious actions on the SSH server based on protocol name and version.
Strong Password Policies: Include auto-expiring passwords and guidelines for strong password creation that require users to reset their password at any time on an on-going basis.
Concealed Server Details: Hide logon banner to conceal server details.
Login Authentication Encryption: All client-server connections are encrypted when using SSH or SSL protocol. FTP connections between WS FTP Server and WS FTP Professional are also encrypted .
Digital Certificate Management: SSL certificates and SSH keys can be used for creating, importing, and exporting. Global SSL certificates and a Trusted Authorities database can be created on a per-host basis.
Mutual Authentication: Mutual authentication of server and connecting FTP clients.
Industry-Standard Algorithms: Industry-standard and FIPS-compliant algorithms for encryption, hashing, and signing.
Digitally Signed Application from Trusted Certificate Authority: Digital signature from Trusted Certificate Authority authenticates Ipswitch as the developer of WS_FTP software, assures the integrity of the application, and proves that nobody has tampered with or changed the software in any way.